Mejiro-McQueen
commented
2 years ago Nick, we might want to make a note of the following:
For KMC Client:
libgcrypt under FIPS will not support AES GCM encryption.
MGSS kickstarts have FIPS mode enabled by default, and some users may have it enabled on their systems. Disabling FIPS will allow gcrypt to use the algorithm.
See: https://dev.gnupg.org/T4873
It might save some headaches until it gets fixed.
Ibraheem might have more info for you.
1) Include more recent example for KMC client config 2) Fix typo in example code that uses 'ait_result' instead of 'crypt_result'